exploitDog

CVE-2021-31217

Опубликовано: 13 июл. 2021

Источник: nvd

CVSS3: 9.1

CVSS2: 9.4

EPSS Низкий

Описание

In SolarWinds DameWare Mini Remote Control Server 12.0.1.200, insecure file permissions allow file deletion as SYSTEM.

Ссылки

https://documentation.solarwinds.com/en/success_center/dameware/content/release_notes/dameware_12-2_release_notes.htm
Release Notes
Vendor Advisory
https://support.solarwinds.com/SuccessCenter/s/
Vendor Advisory
https://documentation.solarwinds.com/en/success_center/dameware/content/release_notes/dameware_12-2_release_notes.htm
Release Notes
Vendor Advisory
https://support.solarwinds.com/SuccessCenter/s/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:solarwinds:dameware_mini_remote_control:12.0.1.200:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00305

Низкий

9.1 Critical

CVSS3

9.4 Critical

CVSS2

Дефекты

CWE-276

Связанные уязвимости

GHSA-8q8c-mcgm-4g49

github

больше 3 лет назад

In SolarWinds DameWare Mini Remote Control Server 12.0.1.200, insecure file permissions allow file deletion as SYSTEM.

EPSS

Процентиль: 53%

0.00305

Низкий

9.1 Critical

CVSS3

9.4 Critical

CVSS2

Дефекты

CWE-276